$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa File: AB988312177211EBAC79CC7EC4F9AE02.roa (raw, json) Hash identifier: Ajj1+XIv2lN+bJkfK3jiIAMbBKfMDrx1rrpjChWFrTw= Subject key identifier: B7:63:D9:64:8F:ED:A7:5C:05:24:5C:D4:20:CE:FF:21:F4:36:C5:B3 Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0C2E Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa Signing time: Wed 18 Mar 2026 19:25:09 +0000 ROA not before: Wed 18 Mar 2026 19:25:09 +0000 ROA not after: Fri 28 May 2027 00:00:00 +0000 asID: 45166 IP address blocks: 58.145.227.0/24 maxlen: 24 58.145.229.0/24 maxlen: 24 58.145.230.0/24 maxlen: 24 210.24.208.0/23 maxlen: 24 210.24.210.0/23 maxlen: 23 210.24.210.0/24 maxlen: 24 210.24.211.0/24 maxlen: 24 210.24.236.0/23 maxlen: 23 210.24.236.0/24 maxlen: 24 210.24.237.0/24 maxlen: 24 2400:1700:300::/48 maxlen: 48 2400:1700:301::/48 maxlen: 48 2400:1700:302::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 31 Mar 2026 19:05:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Validity Not Before: Mar 18 19:25:09 2026 GMT Not After : May 28 00:00:00 2027 GMT Subject: CN=69bafc15-a0e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:29:ba:c1:c7:de:19:75:54:07:cd:34:3d:49: 82:57:36:91:f7:19:2f:a7:32:08:80:31:ae:76:13: cf:f6:ac:8c:55:2a:ab:11:e1:98:83:09:86:c3:11: 14:97:20:06:bf:0c:ec:ea:35:7f:55:74:d6:85:e1: 34:b8:28:e1:fd:a3:63:32:e3:f2:a5:83:f7:74:14: 80:94:77:52:ad:4c:8e:32:e4:cf:09:4f:5d:f6:ff: 95:ea:50:18:24:0f:94:e8:77:6e:ce:6c:ee:5c:73: d0:2f:ba:85:97:f5:18:37:95:1c:c8:4c:70:d6:c8: 4e:6d:58:66:8c:17:0a:18:ef:45:aa:f3:d1:66:77: cf:67:81:a0:69:c0:21:be:38:35:3d:1b:f9:a0:7e: 7a:38:1a:a8:1a:c1:87:6e:e6:35:c6:6f:b8:a9:cf: 52:d8:d1:a3:de:9d:38:fb:ad:02:77:7e:f1:15:6d: 04:0a:53:98:ed:78:5d:63:6a:53:6c:30:3f:60:43: 41:26:77:10:c4:91:72:6b:ff:69:93:4f:f2:12:e6: b8:45:ff:85:f6:26:22:ae:ae:27:87:0c:ab:5f:97: d8:e8:f2:2d:1d:c0:34:ec:e4:86:0b:25:5f:03:32: 5f:30:8d:c1:34:aa:8a:ce:5e:75:38:b6:3f:88:e9: e7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:63:D9:64:8F:ED:A7:5C:05:24:5C:D4:20:CE:FF:21:F4:36:C5:B3 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/AB988312177211EBAC79CC7EC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 58.145.227.0/24 58.145.229.0-58.145.230.255 210.24.208.0/22 210.24.236.0/23 IPv6: 2400:1700:300::-2400:1700:302:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3f:3a:19:f6:0e:b9:b5:d6:2a:81:b0:ba:be:03:5e:3c:07:20: 46:fd:e2:74:42:a6:d4:6b:82:76:a3:f5:24:a2:88:ab:2c:0a: 47:dc:14:06:da:2d:a9:69:c1:55:53:8e:9b:27:64:5e:ee:f7: 6b:18:3f:57:25:b6:35:73:50:02:16:0c:6c:23:9b:7a:0d:d3: af:f4:cd:d9:19:6e:79:59:13:8f:54:72:5f:c8:c3:03:e7:d1: af:2b:a4:92:b8:b5:b1:59:90:8d:b4:85:2b:bb:78:48:88:85: dc:ab:22:22:07:1d:2e:33:a5:c0:a9:f8:bf:2e:5c:4c:60:04: f1:14:c9:ed:70:9b:b0:a8:32:f3:1d:ea:94:74:56:67:29:1c: db:37:bb:82:10:81:2a:cb:65:72:c7:34:bf:b7:f3:e5:39:ff: b8:6d:e7:15:e6:dd:69:12:93:1a:76:7c:ee:69:67:86:4f:2e: 9a:f7:1c:d0:52:d9:32:1a:06:0c:30:3f:b3:64:c9:9e:c3:a3: 71:73:be:9e:57:70:89:00:a7:5a:eb:ad:76:fe:47:bc:ba:e0: 19:49:61:c8:20:f2:6c:55:88:a3:e0:48:68:f2:6d:42:f9:d1: 70:6d:a0:2a:e8:3d:84:8a:0a:7f:34:c4:8b:b8:2e:a1:1a:1a: 7e:0b:25:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjYwMzE4MTkyNTA5WhcNMjcwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OWJhZmMxNS1hMGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Cm6wcfeGXVUB800PUmCVzaR9xkvpzIIgDGudhPP9qyMVSqrEeGYgwmGwxEU lyAGvwzs6jV/VXTWheE0uCjh/aNjMuPypYP3dBSAlHdSrUyOMuTPCU9d9v+V6lAY JA+U6HduzmzuXHPQL7qFl/UYN5UcyExw1shObVhmjBcKGO9FqvPRZnfPZ4GgacAh vjg1PRv5oH56OBqoGsGHbuY1xm+4qc9S2NGj3p04+60Cd37xFW0EClOY7XhdY2pT bDA/YENBJncQxJFya/9pk0/yEua4Rf+F9iYirq4nhwyrX5fY6PItHcA07OSGCyVf AzJfMI3BNKqKzl51OLY/iOnnCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLdj2WSP 7adcBSRc1CDO/yH0NsWzMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQjU3NzNBQUM1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvQUI5ODgzMTIx NzcyMTFFQkFDNzlDQzdFQzRGOUFFMDIucm9hMFQGCCsGAQUFBwEHAQH/BEUwQzAm BAIAATAgAwQAOpHjMAwDBAA6keUDBAA6keYDBALSGNADBAHSGOwwGQQCAAIwEzAR AwYAJAAXAAMDBwAkABcAAwIwDQYJKoZIhvcNAQELBQADggEBAD86GfYOubXWKoGw ur4DXjwHIEb94nRCptRrgnaj9SSiiKssCkfcFAbaLalpwVVTjpsnZF7u92sYP1cl tjVzUAIWDGwjm3oN06/0zdkZbnlZE49Ucl/IwwPn0a8rpJK4tbFZkI20hSu7eEiI hdyrIiIHHS4zpcCp+L8uXExgBPEUye1wm7CoMvMd6pR0VmcpHNs3u4IQgSrLZXLH NL+38+U5/7ht5xXm3WkSkxp2fO5pZ4ZPLpr3HNBS2TIaBgwwP7NkyZ7Do3Fzvp5X cIkAp1rrrXb+R7y64BlJYcgg8mxViKPgSGjybUL50XBtoCroPYSKCn80xIu4LqEa Gn4LJf0= -----END CERTIFICATE-----Generated at Thu Mar 26 19:04:34 2026 by rpki-client